Warning: your Solana Saga phone may present a flaw that will allow savvy hackers to withdraw your cryptocurrencies in no time. According to Certik, more than 2,100 devices are affected. Details !
Flaws in the Solana Phone
The discovery of an infinite loop bug in Sui Network resulted in half a million dollars in rewards in Certik. Specializing in blockchain security, this company continues to raise alarms about the dangers that await Web 3.0.
Below is another warning issued by Certik.
“ Have you ever wondered about the security of your Web3 devices ?
Our latest exploration reveals a significant vulnerability in the Solana Phone bootloader, a challenge not only for this device but for the entire industry. Our commitment to strengthening safety standards is unwavering.
Find out the details in our latest video – an essential look for anyone navigating the Web3 space. »
According to Stuck, Certik discovered a security vulnerability in Solana’s Saga phone. This would endanger nearly 2,100 smartphones since April 2023 since it authorizes the transfer of crypto-assets instantly after obtaining the device.
The cybersecurity company therefore sent an email to Solana, issuer of the most successful altcoin of the moment, SOL, in which it mentioned that the exploit could “ compromise the most sensitive data stored on the phone, including the private keys of cryptocurrencies “.
If no action is taken, Saga Solana phones will become real sieves for crypto hackers. All they have to do is install custom firmware with a root backdoor and steal “ the most sensitive data stored on the phone, including cryptocurrency private keys “.
In fact, its function of ” bootloader unlock » constitutes a point of failure. Add to that a wallet security system entirely dependent on the device’s operating system and you have a completely vulnerable Web3 phone.
A price revised downwards
When it was released in the first half of 2023, some did not hesitate to describe Solana’s Android Saga smartphone as a blockchain revolution. At that time, Anatoly Yakovenko, CEO of Solana, believed in the effectiveness of the Solana Mobil Stack, which includes a “Secure Element” (device for managing private keys and securing Web3 transactions).
Aside from this security breach story, the Saga smartphone also has another problem: adoption. To boost the purchase of the device, Solana Labs has significantly reduced its price by $400. While sold at $1,000 during launch period.
Objective: to encourage the adoption of Solana Saga, and consequently Web3, and improve the overall user experience within the crypto company’s mobile community.
Vulnerability discovery is a necessity in the development of new concepts like Solana’s Web3 phone. Hopefully other promoters of similar projects like Ethereum will learn appropriate lessons from it.
Receive a summary of the news in the world of cryptocurrencies by subscribing to our new service daily and weekly so you don’t miss anything of the Tremplin.io essentials!
